How to Buy
This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
MySQL is a multi-user, multi-threaded SQL database server. It consists
of the MySQL server daemon (mysqld) and many client programs and
A flaw was found in the way MySQL processed HANDLER READ NEXT
statements after deleting a record. A remote, authenticated attacker
could use this flaw to provide such requests, causing mysqld to crash.
This issue only caused a temporary denial of service, as mysqld was
automatically restarted after the crash. (CVE-2012-2102)
This update also adds the following enhancement :
- The InnoDB storage engine is built-in for all
architectures. This update adds InnoDB Plugin, the
InnoDB storage engine as a plug-in for the 32-bit x86,
AMD64, and Intel 64 architectures. The plug-in offers
additional features and better performance than when
using the built-in InnoDB storage engine. Refer to the
MySQL documentation, linked to in the References
section, for information about enabling the plug-in.
All MySQL users should upgrade to these updated packages, which add
this enhancement and contain a backported patch to correct this issue.
After installing this update, the MySQL server daemon (mysqld) will be
See also :
Update the affected packages.
Risk factor :
Low / CVSS Base Score : 3.5
Family: Scientific Linux Local Security Checks
Nessus Plugin ID: 61341 ()
CVE ID: CVE-2012-2102
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.